The Citizen Lab, an
interdisciplinary laboratory based at the Munk School of Global Affairs, University of Toronto, focusing on research, development, and high-level strategic policy and legal engagement at the intersection of information and communication technologies, human rights, and global security.
released “Security Planner” early last week. Security Planner is a tool that will guide everybody through their Internet usage habits with only few simple questions
Answer a few simple questions to get personalized recommendations of free and open-source software. It’s confidential — no personal information is stored, and we won’t access any of your online accounts.
With this information, it provides simple steps and personalized safety recommendations to follow for the improvement of individuals privacy online. The recommendations base on free- and open source projects and best practices, aiming to raise awareness and help people maintain better privacy.
Source: Security Planner – Improve your online safety with tools for your needs.
So, this is the future of security with smart devices.
via: Samsung warns customers not to discuss personal information in front of smart TVs
Docker announced version 1.10 past week. The new release contains more than 100 improvements over the previous version. New features include better resource management, a more flexible docker-compose file format and improvements to security. These are in particular through user namespace isolation, implementation of seccomp for syscall filtering and an authorization plugin to restrict access to Docker engine features.
We’re pleased to announce Docker 1.10, jam-packed with stuff you’ve been asking for. It’s now much easier to define and run complex distributed apps with Docker Compose. The power that Compose brou…
via: Docker Blog
Whatever we do, it’s not sufficient. Because the technology is developing and evolving at a pace too quick. That’s what Telefónica concludes. No surprise there.
The Internet of Things (IoT) is developing at an enormous pace, much so that it outpaces any and all security efforts.
Forrester, well known for their predictions on the impact of technology, took a look at the state of Internet of Things Security. To no surprise they came to the conclusion the technology still has to come a long way.
Forrester’s take on the Internet of things isn’t that shocking–the industry has developed with little thought about security–but the time frames are jarring nonetheless.
Security on the Internet of things has often been said to be bad. Apparently Shodan runs a search engine for sleeping kids. Through kids monitor cams available to watch. Publicly on the internet. Enough proof the Internet of Things really needs security.
Shodan search engine is only the latest reminder of why we need to fix IoT security.
Quelle: Internet of Things security is so bad, there’s a search engine for sleeping kids | Ars Technica
If you don’t patch that device, somebody else may. Says Symantec.
Google’s “Project Zero” took a look at Kaspersky’s products. The result is unpleasant, if not to say devastating.
The closing statement is a constructive mention towards Antivirus products.
In future, we would like to see antivirus unpackers, emulators and parsers sandboxed, not run with SYSTEM privileges.
Facebook’s new chief security officer, Alex Stamos, has stated publicly that he wants to see Adobe end Flash.
Most of the internet will consider this a good idea. Not too sure about the Facebook bunch yet.
A bug in VMWare’s vprintproxy.exe process allows the guest OS to escape it’s environment through the COM1 serial port.
via: Escaping VMware Workstation through COM1